Law Firm Data Breaches: The Cone of Silence Shatters

August 8, 2016

Excerpt: For years, the authors (and many others) have been saying that law firms generally keep mum about data breaches. While we have seen a few small firms abide by data breach notification laws, the larger firms generally have not, usually hanging their hat on the “we don’t know what data was compromised” or the “we had an incident, but no evidence of an actual breach or misuse of data” excuses. In fairness, not all data breach notification laws are equal – in some cases, they may not have to disclose Whether they have told their clients is unknown, but speculation has been rising that they often have not, for fear of a mass client exodus.